PkgRadar

Cargo · crates.io

ostool

Remote Payload: matched "github.com/rust-osdev/ovmf-prebuilt/releases/download"

Why PkgRadar flagged 0.22.0

SeveritySignalEvidence
mediumRemote Payloadmatched "github.com/rust-osdev/ovmf-prebuilt/releases/download" · ostool-0.22.0/src/run/ovmf_prebuilt/fetch.rs

Scanned versions

VersionVerdictScoreScanned (UTC)
0.22.0Review62026-06-05

Block this in CI

PkgRadar gates ostool (and every other dependency) before it merges. One line in your pipeline:

pkgradar gate --ecosystem cargo [email protected]
Start free — 25 scans / moView full evidence